The Visibility setting determines who can see and use a form, and whether other users can access your forms. You can set this property on the Forms Home Page or the Flows Home Page by clicking on the icon and filling out the Access Control screen. You can also display the Access Control wizard by clicking the icon located on the form/flow designer toolbar.
When you click the icon to share your form, you’ll see a Share Form page with five different options at the right. Three options (Embedded Form, Full Page/Pop Up and Just the iframe) are different ways to let users submit the form from your Web page without having to navigate elsewhere. These options have associated code on the left; this is for you to cut and paste into your Web page. Specific instructions for the code also are provided.
Be sure to use the Share icon in the Forms Designer when you want to share a form or add it to a web page. Do not use the browser URL you see when you're running or testing a form — this URL represents an ''instance'' of the form, not the actual form itself.
When you run or test a form, you'll notice that the browser URL includes a -extID parameter (for example, .../popupform?embed=true_extId=0.5427066243050674). This means that it's an in-memory instance of the form. You can use the _extID parameter yourself if you want to collaborate with others on an instance of a form. See the _extID topic for more information.
The two Link options give you a link to the form/flow. You can send the link in an email or publish it on your web page.
Each option is discussed below. Remember to make your form public or users won’t be able to access the form no matter which method of sharing you choose.
Keep in mind that if you have shared your form via one of the link options and subsequently marked your form private, users will see an error message indicating that the "Access denied. Are you trying to access a private form / flow?".
resources, Applications, Forms, Flows, Spaces and more are referenced with opaque URLs. Use of opaque URLs eliminates security issues that may have been present with URLs that exposed a designer user's id. Opaque URLs replace the user id (…/user/user.id/…) that was used in the previous format with a universally unique identifier (uuid) …/u/user.uuid/… The uuid, is a randomly generated value that is stored in .
The Opaque URL feature provides:
An example of the opaque URL for a space named mycompany is shown below:
OLD SPACE URL: http(s)://<server>:<port>/frevvo/web/tn/mycompany/user/designer/space/mycompany NEW SPACE URL: http(s)://<server:port>/frevvo/web/tn/mycompany/u/8aa27da6-4bef-427c-92e3-6ad8d58e506a/space/mycompany
The opaque URL can be used to determine the designer account where a form/flow is located. This "lookup" feature resolves the uuid to a user's id and can be very helpful when troubleshooting. The "lookup" feature is only available to tenant admins, users with the designer/publisher role or the designer/owner of the form/flow
The "lookup" feature works with:
In all cases, follow these steps:
A user receives an email that includes an opaque URL to a form/flow as shown below. The user reports an issue with the form/flow and requests that the designer investigate. The designer must locate the account where the form/flow is located.
Paste the opaque URL into your browser. Remove popupform from the URL and replace it with lookup after the slash.
Press the Enter key. Login to the tenant (determined by the tenant name after the /tn in the URL) as an admin, designer or publisher user if presented with the login screen.
The following information about the form/flow display in the browser:
Tenant: mycompany User: designer Application: HR Form: Invoice
A designer must make changes to a form/flow in their company space at the request of a co-worker. The requesting employee logs into the company space, selects the form/flow from the menu and copies the form/flow instance URL from the browser. An opaque URL such as the one shown below is emailed to the designer. The designer can't remember what user, app, form/flow name that opaque url maps to and uses the lookup feature to find the form/flow they need to fix/enhance.
Paste the opaque URL into your browser. Remove everything after the uuid. Replace it with lookup after the slash. Press the Enter key. Login to the tenant (determined by the tenant name after the /tn in the URL) as an admin, designer or publisher user if presented with the login screen.
The uuid is converted to the user id of the designer who owns the space.
Login to the tenant as the specified user and edit the space menu to get the raw form/flow link. Remove everything after the formtype, flowtype, value in the opaque Raw Form/flow link. In the example shown, you would remove all characters starting with the question mark
Add /lookup to get the application and form/flow name
The workflow named Example 3 - PO for Sales Review is located in the tenant mycompany, in the designer user account, in the application Purchase Order Completed.
If you are using a tenant configured for a container security manager and you want to allow anonymous access to your forms/flows, you must manually add "public" to the link to make forms/flows accessible to users who are not logged in. You must do this if you are using any of the URL types in the Share dialog for forms and flows, using a Space or embedding forms/flows in your website. The public URL allows the tenant to be secured while public forms can be accessed anonymously, ex: a job application on an external website.
Here is an example of a public url used to access a form in a container security managed tenant. The form/flow visibility is set to public via the Access Control feature. Anonymous users will be able to access the form as the servlet container will ALLOW access to the frevvo.war and ' access control will ALLOW access to the form. Close/open your browser or copy/paste the public url into another browser when testing.
You will not see the public url listed in the Share light box.
If you are using a tenant configured for a container security manager and you want to allow anonymous access to your forms/flows from your website, you must create a public URL.
When you create a new form, by default it is marked as private. At this time the only person who can use the form via any of the form's share choices, is the person logged into this account. Once you are ready to let others use your form you can mark the form as public. Now anyone that is given the form's Url via any of the form's share choices, has access to use and submit the form.
Private vs public appear to be a binary choice. Either no one has access unless you're logged into the account or everyone has access without the need to login. Another way to make the form accessible is to leave the form locked and share it via browser session restricted access. The API can generate form Urls that are only valid for the current browser session. The form Url generated in this way (not via the Share choices) cannot be passed to anyone outside of the session as it will not work
can easily be added into your existing web site. The option above in the Share section explains the code you need to copy into your web page and the different ways that the forms can be added to your site.
If your web server and form server are in the same domain (in-house likely scenario), you are able to embed as many forms into each of your .html web pages as you wish. In order to do this you must give each form a unique id. So if you copy the Share code into the web page a 2nd time, you must edit id to make them different from the 1st copy/paste. Id can be any string as long as it is unique.
If you experience problems with your web page not resizing correctly to accommodate multiple embedded forms, try setting the height of the form manually. Open the form in the Forms Designer, click the Style tab in the Properties panel, and and type a value in pixels (for example, ''720px'', ''900px'', etc.) in the Height field to set the form height.
Currently does not support the ability to embed multiple forms in a single .html web page iin a cross domain configuration. This is the SaaS scenario, where the is hosted on app.frevvo.com and your web site is on another domain. In this scenario you currently can only embed a single form into each of your .html web pages.
For this version, embedding the task list successfully into an HTML page requires setting its width. See URL Parameters for more details.
By default, forms will display inside your web page in a frame. On mobile only, you can use the showLink URL parameter to display the form as a clickable link or thumbnail instead. The web master can customize the share link using the URL parameters described below.
If the iframe is not properly sized to the viewport on your mobile device, add the following meta tag between the <head> elements in the HTML.
<head> <meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1"> </head>
Here is an example of HTML with the meta tag and embedded script:
Data loss is possible if users filling in a lot of data in a long forms/flows close the browser ot tab without saving or submitting. If the Unsaved Changes Warning feature is configured, users will be warned of this situation before the data loss. This applies to use-mode forms and flows only, not edit mode. The warning only shows if there have been changes made to the form/flow. If there are no changes, then no warning is displayed. If the form/flow is Saved or the Save on Navigate feature is configured for a flow, then changes are saved and the warning is not produced on any attempt to close the browser.
The unsaved changes warning feature is not supported on iOS Safari and only partially supported on Chrome Android. You may notice some inconsistencies with workflows. Refer to the Unsaved Changes topic for the details.
This feature is not configured in the frevvo Cloud. In-house customers can turn on the Unsaved Changes Warning feature with the frevvo.unsaved.warning property.
The warning behavior message is browser specific. The messages for Firefox, Chrome and Microsoft Edge are shown below:
Certain browsers (chrome and firefox, but not IE11 and Edge) will not show the Unsaved Data message on closing the browser window/tab if the user does not click on something.
The Unsaved Changes feature may not work reliably with flows in the following scenarios:
The Unsaved Data Warning will appear when performing a task from the Task List. For example,if you change some data and then click the Inbox icon
To turn off the unsaved warning feature for a particular form/flow instance, add the _unsavedWarning=true/false URL parameter to the Share URL. Remember to add the ? at the end of the URL if this is the first URL parameter you are adding and the & at the end of the URL if there are other URL parameters already appended to the URL.
Designers may want to do this when developing/testing forms/flow.
See URL Parameters for more information.
In-house customers can turn on the Unsaved Data feature by adding the the frevvo.unsaved.warning property to the frevvo-config.properties file. Appending the _unsavedWarning URL parameter to a form/flow overrides the value set in this configuration property.